When an Octopus server is installed, we generate a special key used for encryption, called the master key. The master key is then encrypted asymmetrically, using DPAPI, and stored in the Octopus configuration file.

The master key is then used along with AES-128 to encrypt certain sensitive data in the Octopus database, including: